Ssl connect to traccar 4.3 missing device icons

dirkdeb6 years ago

Hope anybody can help me on this.
We have traccar 4.3 installed,
Server version: Apache/2.4.6 (CentOS)
Server built: Nov 5 2018 01:47:09
Letsencrypt certificates working.
Other sites hosted on the server is working 100% with ssl
The http//myserver.com redirect perfectly to https://myserver.com
The url https://myserver.com seems working fine except that no device icon is showing up on the map.
Apache server config file for myserver.com in /etc/httpd/conf.d

<IfModule mod_ssl.c>
          <VirtualHost _default_:80>
               ServerName myserver.com
               Redirect / https://myserver.com
         </VirtualHost>
         <VirtualHost *:443>
                ServerName myserver.com
                ServerAdmin support@myserver.com
                ProxyPass /api/socket ws://localhost:8082/api/socket
                ProxyPassReverse /api/socket ws://localhost:8082/api/socket
                ProxyPass / http://localhost:8082/
                ProxyPassReverse / http://localhost:8082/
                SSLEngine on
                Include /etc/letsencrypt/options-ssl-apache.conf
                SSLCertificateFile /etc/letsencrypt/live/myserver.com-0001/fullchain.pem
                SSLCertificateKeyFile /etc/letsencrypt/live/myserver.com-0001/privkey.pem
        </VirtualHost>
<IfModule mod_ssl.c>

I have tested with some other options with the same result.
Is there possibly a port on the firewall other from 443, 80 and 8082 that needs to be opened up ?
Thank you in advance for the help.

Dario6 years ago

yes, you need to open port to communicate with the tracker. In my case, protocol h02 was port 5013.
5001/5002 are tcp/udp, check the protocol of your device, and open/forward the correct port.
Hope could help ;)

dirkdeb6 years ago

Thanx Dario,
Yes obvious, evything is working 100% except for the SSL connection to the web portal.

Anton Tananaev6 years ago

Have you checked browser console for errors?

dirkdeb6 years ago

Thanx Dario,
Yes obvious, everything is working 100% except for the SSL connection to the web portal.
But I fixed the problem.
Read all about the solution at htps://stackoverflow.com/questions/27358966/how-to-set-x-frame-options-on-iframe
Do : grep -ri "X-Frame-Options" /etc/httpd/conf.d and see which files sits with the "DENY" entry
I changed the file /etc/httpd/conf.d/ssl-params.conf
Line with Header always set X-Frame-Options DENY to Header always set X-Frame-Options SAMEORIGIN
Restart apache systemctl restart httpd
Do a cntrl F5 in crome on https://myserver.com and now all is well.

dirkdeb6 years ago

Anton, thanx for the obvious hint. Thats where I got the information to fix it.
Regards

Anton Tananaev6 years ago

I'm not sure what frame options have to do with SSL.

caspa4 years ago

my device icon don't work too( device icon don't on map), in /etc/apache2/conf-available/ssl-params.conf change:
Header always set X-Frame-Options DENY
to
Header always set X-Frame-Options SAMEORIGIN
!!!